Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
File: AS61138.roa (raw, json)
Hash identifier: zjHGPszPg+D0/FuTIBOAgaMLQoPJ72QC7LHW78ZtzHk=
Subject key identifier: 9B:10:4A:83:89:67:D2:F8:BF:A3:8F:81:12:64:F5:FC:A2:C3:D6:62
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0C0B8ECA64EACF1A2163784D5FDE911101ABC551
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
Signing time: Sun 13 Apr 2025 21:58:55 +0000
ROA not before: Sun 13 Apr 2025 21:53:55 +0000
ROA not after: Sun 12 Apr 2026 21:58:55 +0000
asID: 61138
IP address blocks: 5.253.84.0/22 maxlen: 24
5.253.86.0/24 maxlen: 24
27.0.232.0/22 maxlen: 24
81.31.208.0/21 maxlen: 24
83.142.30.0/23 maxlen: 24
85.90.220.0/23 maxlen: 24
89.39.210.0/23 maxlen: 24
94.24.108.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
103.204.192.0/22 maxlen: 24
103.214.68.0/22 maxlen: 24
103.230.140.0/22 maxlen: 24
104.167.16.0/23 maxlen: 24
118.91.184.0/22 maxlen: 24
144.48.80.0/22 maxlen: 24
160.202.132.0/22 maxlen: 24
185.90.62.0/23 maxlen: 24
185.99.132.0/22 maxlen: 24
185.121.160.0/22 maxlen: 24
185.121.168.0/22 maxlen: 24
185.121.168.0/24 maxlen: 24
185.121.176.0/22 maxlen: 24
185.147.32.0/22 maxlen: 24
185.195.238.0/23 maxlen: 24
185.214.172.0/22 maxlen: 24
185.236.212.0/22 maxlen: 24
194.58.64.0/23 maxlen: 24
195.184.246.0/23 maxlen: 24
202.50.52.0/22 maxlen: 24
2a06:1280::/32 maxlen: 48
2a06:9f45::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a06:a004::/32 maxlen: 48
2a06:a006::/32 maxlen: 48
2a09:54c1::/32 maxlen: 48
2a0a:6047::/32 maxlen: 48
2a0d:d903::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 07:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:0b:8e:ca:64:ea:cf:1a:21:63:78:4d:5f:de:91:11:01:ab:c5:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 13 21:53:55 2025 GMT
Not After : Apr 12 21:58:55 2026 GMT
Subject: CN=9B104A838967D2F8BFA38F811264F5FCA2C3D662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e7:12:79:4a:a5:2a:6c:e4:5e:a5:68:b3:da:
27:de:43:1d:7a:98:1e:57:f5:05:54:c7:df:89:2e:
b5:94:f7:24:dc:f1:04:f8:c9:4e:df:88:80:b0:a2:
bf:a3:7a:32:7c:8c:69:ab:e3:de:1d:9c:45:ff:38:
b2:cb:3b:52:25:49:28:7f:88:7d:f9:41:48:ec:e1:
b4:23:1a:af:32:db:e7:3c:f2:3f:b2:b4:e9:64:f0:
00:d8:55:88:2b:81:09:ff:6c:88:b9:ed:e0:52:5e:
59:30:0e:6b:9a:f4:29:31:a6:18:e6:1e:fe:4e:24:
bc:2d:e1:57:62:12:6e:dd:49:98:79:18:cf:16:c6:
f6:0f:f7:16:ad:a1:77:58:08:b8:aa:21:a7:5d:24:
79:ad:88:07:e9:e3:af:22:0f:78:c3:80:56:26:24:
d2:78:05:a9:eb:cc:0b:15:d3:d4:89:3b:f3:46:4e:
bb:4b:80:9c:ae:92:97:fa:89:33:6b:6b:90:28:d2:
26:4e:8a:18:8c:ca:83:48:2c:b3:9e:1e:dc:42:83:
ed:2f:46:49:05:cd:4e:fb:74:69:94:b9:b3:44:a2:
6c:f9:35:92:d6:08:8a:f0:d8:c3:ad:89:fb:79:2e:
53:c9:9e:02:71:62:d6:ff:37:47:d8:5a:13:41:0a:
cc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:10:4A:83:89:67:D2:F8:BF:A3:8F:81:12:64:F5:FC:A2:C3:D6:62
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/22
27.0.232.0/22
81.31.208.0/21
83.142.30.0/23
85.90.220.0/23
89.39.210.0/23
94.24.108.0/23
94.26.24.0/23
103.204.192.0/22
103.214.68.0/22
103.230.140.0/22
104.167.16.0/23
118.91.184.0/22
144.48.80.0/22
160.202.132.0/22
185.90.62.0/23
185.99.132.0/22
185.121.160.0/22
185.121.168.0/22
185.121.176.0/22
185.147.32.0/22
185.195.238.0/23
185.214.172.0/22
185.236.212.0/22
194.58.64.0/23
195.184.246.0/23
202.50.52.0/22
IPv6:
2a06:1280::/32
2a06:9f45::-2a06:9f46:ffff:ffff:ffff:ffff:ffff:ffff
2a06:a004::/32
2a06:a006::/32
2a09:54c1::/32
2a0a:6047::/32
2a0d:d903::/32
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
3d:ab:7b:e9:47:08:90:6d:23:9b:5c:32:19:16:bc:82:c7:23:
b8:b9:37:9f:fe:79:5d:a8:1d:b1:a7:dd:77:4a:66:fc:15:9a:
db:5b:a3:2c:d3:4c:40:b8:f7:b2:88:17:65:f5:7c:2d:19:6e:
f3:32:37:4e:fa:94:fa:8b:35:e5:09:8b:a4:78:24:77:0e:13:
de:80:e1:fe:0e:83:f4:43:e1:10:95:a4:8d:14:1b:af:42:63:
26:26:a9:f9:a8:d7:ea:19:9f:4a:04:0a:fc:bc:c8:27:8e:d4:
52:e4:c2:8a:ae:52:97:72:d5:55:98:ac:a2:4b:98:35:34:50:
8f:ec:df:76:3e:ca:76:57:9f:c5:2c:b1:d0:21:a1:1f:1a:f3:
59:99:19:fb:82:e2:71:19:5a:8e:36:11:21:31:5e:0c:76:9d:
84:25:54:25:d5:13:59:00:0a:0b:0e:00:72:f0:4a:73:fa:24:
e7:e3:8e:d4:b0:e2:04:db:1f:82:e9:12:b7:d7:46:94:ed:f8:
16:f9:c0:92:88:55:01:71:5a:63:4d:0d:fb:cc:7c:4c:a5:2a:
08:00:29:7c:99:fd:96:38:2a:83:28:2c:4d:01:55:59:f0:12:
63:d0:29:7f:e3:04:2a:bc:34:61:8d:ad:73:01:05:58:8f:70:
91:a3:e9:da
-----BEGIN CERTIFICATE-----
MIIFzzCCBLegAwIBAgIUDAuOymTqzxohY3hNX96REQGrxVEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNTA0MTMyMTUzNTVaFw0yNjA0MTIyMTU4NTVaMDMxMTAvBgNV
BAMTKDlCMTA0QTgzODk2N0QyRjhCRkEzOEY4MTEyNjRGNUZDQTJDM0Q2NjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD5xJ5SqUqbORepWiz2ifeQx16
mB5X9QVUx9+JLrWU9yTc8QT4yU7fiICwor+jejJ8jGmr494dnEX/OLLLO1IlSSh/
iH35QUjs4bQjGq8y2+c88j+ytOlk8ADYVYgrgQn/bIi57eBSXlkwDmua9Ckxphjm
Hv5OJLwt4VdiEm7dSZh5GM8WxvYP9xatoXdYCLiqIaddJHmtiAfp468iD3jDgFYm
JNJ4BanrzAsV09SJO/NGTrtLgJyukpf6iTNra5Ao0iZOihiMyoNILLOeHtxCg+0v
RkkFzU77dGmUubNEomz5NZLWCIrw2MOtift5LlPJngJxYtb/N0fYWhNBCsyvAgMB
AAGjggLZMIIC1TAdBgNVHQ4EFgQUmxBKg4ln0vi/o4+BEmT1/KLD1mIwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
NjExMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwggEIBggrBgEFBQcB
BwEB/wSB+DCB9TCBqQQCAAEwgaIDBAIF/VQDBAIbAOgDBANRH9ADBAFTjh4DBAFV
WtwDBAFZJ9IDBAFeGGwDBAFeGhgDBAJnzMADBAJn1kQDBAJn5owDBAFopxADBAJ2
W7gDBAKQMFADBAKgyoQDBAG5Wj4DBAK5Y4QDBAK5eaADBAK5eagDBAK5ebADBAK5
kyADBAG5w+4DBAK51qwDBAK57NQDBAHCOkADBAHDuPYDBALKMjQwRwQCAAIwQQMF
ACoGEoAwDgMFACoGn0UDBQAqBp9GAwUAKgagBAMFACoGoAYDBQAqCVTBAwUAKgpg
RwMFACoN2QMDBQAqDdkGMA0GCSqGSIb3DQEBCwUAA4IBAQA9q3vpRwiQbSObXDIZ
FryCxyO4uTef/nldqB2xp913Smb8FZrbW6Ms00xAuPeyiBdl9XwtGW7zMjdO+pT6
izXlCYukeCR3DhPegOH+DoP0Q+EQlaSNFBuvQmMmJqn5qNfqGZ9KBAr8vMgnjtRS
5MKKrlKXctVVmKyiS5g1NFCP7N92Psp2V5/FLLHQIaEfGvNZmRn7guJxGVqONhEh
MV4Mdp2EJVQl1RNZAAoLDgBy8Epz+iTn447UsOIE2x+C6RK310aU7fgW+cCSiFUB
cVpjTQ37zHxMpSoIACl8mf2WOCqDKCxNAVVZ8BJj0Cl/4wQqvDRhja1zAQVYj3CR
o+na
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:36:12 2025 by rpki-client